CVE-2021-43949 vulnerability in Atlassian Products
Published on January 10, 2022

Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote attackers to view private objects via a Broken Access Control vulnerability in the Custom Fields feature. The affected versions are before version 4.21.0.

NVD

Products Associated with CVE-2021-43949

stack.watch emails you whenever new vulnerabilities are published in Atlassian Data Center or Atlassian Jira. Just hit a watch button to start following.

Atlassian Data Center

Atlassian Jira

Affected Versions

Atlassian Jira Service Management Server:

Version unspecified and below 4.21.0 is affected.

Atlassian Jira Service Management Data Center:

Version unspecified and below 4.21.0 is affected.

Exploit Probability

EPSS

0.32%

Percentile

54.51%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-43949 vulnerability in Atlassian ProductsPublished on January 10, 2022

Products Associated with CVE-2021-43949

Affected Versions

Exploit Probability

CVE-2021-43949 vulnerability in Atlassian Products
Published on January 10, 2022